Merge the 2021-02-05 SPL branch from AOSP-Partner * security-aosp-pi-release: Fix OOB read in DNS resolver Change-Id: I8e96083695807d17a95edef2b69b02d5135cfadb

commit: cd88afec478bcd3e3fca979ece6f8512936831b8 [log] [tgz]
author: Karsten Tausche <karsten@fairphone.com> Wed Jan 20 10:08:26 2021 +0100
committer: Karsten Tausche <karsten@fairphone.com> Wed Jan 20 10:08:26 2021 +0100
tree: c2a62d13236199c9ee52b027a491e90726fab33a
parent: 271bee72bb1059504935bb377b2d0cc0dff91cd7 [diff]
parent: 1d5fa0a6c7a7252aaca61f034ec9de5d7fa84fe1 [diff]
diff --git a/libc/dns/resolv/res_send.c b/libc/dns/resolv/res_send.c
index 18bb752..81b42a6 100644
--- a/libc/dns/resolv/res_send.c
+++ b/libc/dns/resolv/res_send.c

@@ -950,6 +950,8 @@
 			else
 				break;
 		}
+		// return size should never exceed container size
+		resplen = anssiz;
 	}
 	/*
 	 * If the calling applicating has bailed out of
@@ -962,7 +964,7 @@
 		DprintQ((statp->options & RES_DEBUG) ||
 			(statp->pfcode & RES_PRF_REPLY),
 			(stdout, ";; old answer (unexpected):\n"),
-			ans, (resplen > anssiz) ? anssiz: resplen);
+			ans, resplen);
 		goto read_len;
 	}
commit	cd88afec478bcd3e3fca979ece6f8512936831b8	[log] [tgz]
author	Karsten Tausche <karsten@fairphone.com>	Wed Jan 20 10:08:26 2021 +0100
committer	Karsten Tausche <karsten@fairphone.com>	Wed Jan 20 10:08:26 2021 +0100
tree	c2a62d13236199c9ee52b027a491e90726fab33a
parent	271bee72bb1059504935bb377b2d0cc0dff91cd7 [diff]
parent	1d5fa0a6c7a7252aaca61f034ec9de5d7fa84fe1 [diff]